$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/etUahWkjeXWHjjHxiknMP3OSKwI.roa File: etUahWkjeXWHjjHxiknMP3OSKwI.roa (raw, json) Hash identifier: Pf6plxtTnofazEi2glzP0RoCi4aES5u/mvhAH8Sy4hk= Subject key identifier: 7A:D5:1A:85:69:23:79:75:87:8E:31:F1:8A:49:CC:3F:73:92:2B:02 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1992 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/etUahWkjeXWHjjHxiknMP3OSKwI.roa Signing time: Fri 22 Aug 2025 08:53:08 +0000 ROA not before: Fri 22 Aug 2025 08:53:08 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9922 IP address blocks: 106.105.8.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6546 (0x1992) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 22 08:53:08 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=7AD51A8569237975878E31F18A49CC3F73922B02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:1a:ea:22:b9:5e:5a:78:0d:11:ce:02:c6:e8: 4a:36:85:e2:28:80:9a:92:87:92:21:eb:e9:7d:9e: cd:42:df:d9:85:2b:81:bc:79:ed:f6:f0:3f:20:25: 0d:ac:c6:f3:67:99:dd:cd:58:d8:78:db:9d:61:d4: c4:52:99:e1:2a:1f:b4:a5:c5:db:7f:53:b4:95:2c: 16:0c:50:44:0c:09:45:26:06:03:95:58:ee:9b:b0: 3e:86:e7:03:31:d4:77:3c:b8:46:d0:e4:d0:2d:1a: fe:80:69:e6:23:3a:d9:0b:26:73:95:5a:f1:5b:65: fa:7e:47:80:4d:aa:78:1e:08:9c:aa:68:86:1a:73: 6c:6b:bf:f9:f8:29:cc:5a:cf:51:4b:c5:2e:27:55: 30:1c:c0:3c:3b:fa:f9:d7:72:65:82:3b:60:99:bc: 54:ed:a9:24:46:35:e3:59:c3:ac:5d:5c:78:d4:55: e3:e1:ab:ae:57:bc:c2:54:ef:ba:9a:b6:c6:bb:93: 31:6c:ab:db:2c:de:5a:00:02:e4:5b:fe:2f:29:cc: d9:12:6f:00:27:20:6d:1c:8d:d1:ae:a0:ae:5d:f0: 23:09:c8:db:ed:75:fe:17:ac:b6:5f:74:3a:76:5a: 97:6d:5e:67:62:1f:3f:42:b7:fe:1d:f7:44:d4:28: 97:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:D5:1A:85:69:23:79:75:87:8E:31:F1:8A:49:CC:3F:73:92:2B:02 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/etUahWkjeXWHjjHxiknMP3OSKwI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.105.8.0/21 Signature Algorithm: sha256WithRSAEncryption cb:f1:55:0d:30:4f:40:6c:e6:2f:c2:e0:27:ad:29:c8:b0:45: df:62:48:31:e6:ae:08:4f:4b:a9:01:59:0b:53:ed:29:9f:5f: 7d:26:6a:52:88:ba:39:b4:06:f4:a3:a3:ef:57:5a:36:65:8a: 7c:03:6a:9e:30:2b:da:65:2b:ac:26:bb:04:d5:86:a9:65:48: 7a:12:bd:3d:3d:e8:90:ac:b6:a6:9e:16:c7:cc:2d:a9:50:5f: 2b:ff:cf:42:ea:88:19:6d:6d:1e:af:ff:14:a2:ed:e1:56:ec: e6:36:33:ac:de:0e:89:6f:4c:ed:dd:ee:32:4d:ee:56:9a:53: 96:2e:bc:89:ac:13:2e:c5:5b:fa:49:1e:d6:8b:c8:ab:40:06: 1f:74:69:65:76:31:36:a2:ad:d2:dc:f7:e1:7e:31:7c:ab:28: b2:b5:b0:58:12:1b:b8:2d:12:5a:fa:c2:9c:f4:f2:db:2c:c3: 30:35:66:28:ad:12:e0:5b:65:a6:43:e2:73:18:6f:af:ba:83: 66:8b:68:39:d8:27:ba:69:fb:89:d8:a8:3d:5a:a5:1a:ee:42: e2:fc:e5:94:9e:5a:c5:32:23:c4:70:58:39:01:ac:17:3d:37: 33:d1:f8:38:47:d1:5b:13:9d:f6:33:67:8b:f2:76:0d:dc:4b: 4d:5c:ad:ea -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICGZIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTA4MjIw ODUzMDhaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDdBRDUxQTg1NjkyMzc5 NzU4NzhFMzFGMThBNDlDQzNGNzM5MjJCMDIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCdGuoiuV5aeA0RzgLG6Eo2heIogJqSh5Ih6+l9ns1C39mFK4G8 ee328D8gJQ2sxvNnmd3NWNh4251h1MRSmeEqH7Slxdt/U7SVLBYMUEQMCUUmBgOV WO6bsD6G5wMx1Hc8uEbQ5NAtGv6AaeYjOtkLJnOVWvFbZfp+R4BNqngeCJyqaIYa c2xrv/n4Kcxaz1FLxS4nVTAcwDw7+vnXcmWCO2CZvFTtqSRGNeNZw6xdXHjUVePh q65XvMJU77qatsa7kzFsq9ss3loAAuRb/i8pzNkSbwAnIG0cjdGuoK5d8CMJyNvt df4XrLZfdDp2WpdtXmdiHz9Ct/4d90TUKJebAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUetUahWkjeXWHjjHxiknMP3OSKwIwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvZXRVYWhXa2plWFdIampIeGlrbk1Q M09TS3dJLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA2ppCDAN BgkqhkiG9w0BAQsFAAOCAQEAy/FVDTBPQGzmL8LgJ60pyLBF32JIMeauCE9LqQFZ C1PtKZ9ffSZqUoi6ObQG9KOj71daNmWKfANqnjAr2mUrrCa7BNWGqWVIehK9PT3o kKy2pp4Wx8wtqVBfK//PQuqIGW1tHq//FKLt4Vbs5jYzrN4OiW9M7d3uMk3uVppT li68iawTLsVb+kke1ovIq0AGH3RpZXYxNqKt0tz34X4xfKsosrWwWBIbuC0SWvrC nPTy2yzDMDVmKK0S4FtlpkPicxhvr7qDZotoOdgnumn7idioPVqlGu5C4vzllJ5a xTIjxHBYOQGsFz03M9H4OEfRWxOd9jNni/J2DdxLTVyt6g== -----END CERTIFICATE-----Generated at Sun Aug 24 13:52:12 2025 by rpki-client